2 matches found
CVE-2018-11546
md4c 0.2.5 has a heap-based buffer over-read because mdisnamedentitycontents has an off-by-one error...
CVE-2018-11546
CVE-2018-11546 affects md4c 0.2.5 and is due to a heap-based buffer over-read caused by an off-by-one in md_is_named_entity_contents. The issue is documented across multiple sources (e.g., NVD/N-Red Hat/CNVD) as a vulnerability in md4c 0.2.5, with high to critical impact (network-exposed, partial...